Going on a long vacation, don't expect much activity from me for a couple of weeks. Peace ✌️
For those wondering, IANAL but Valve is required by law to show up this legal notice (at least if they want to sell in France)
Good to see @mozilla pushing for more hygiene into development processes (2FA for all developers, commits to be GPG signed, least privilege, ...) https://blog.mozilla.org/security/2018/09/11/protecting-mozillas-github-repositories-from-malicious-modification/
Just booked my @hack_lu ticket! See you guys there in a few weeks :)
This is why TLS/SSL is important, too (who would have thought? eh)
RCE in apk, the default package manager for Alpine Linux https://justi.cz/security/2018/09/13/alpine-apk-rce.html #vulnerability https://t.co/PK3MNUERCr
New rule: you can begin to worry about APT the day a simple nessus scan gives 0 results on your network. Until then, keep patching and keep calm.
MFW you fear about APTs but can't even apply basic infosec hygiene 🤦♂️ https://www.wsj.com/articles/before-it-was-hacked-equifax-had-a-different-fear-chinese-spying-1536768305
Here is a good example of polyglot files being used to bypass security policies https://portswigger.net/blog/bypassing-csp-using-polyglot-jpegs cc @angealbertini
Good to see Apple pushing more privacy & security features into iOS and macOS 👍 https://techcrunch.com/2018/09/11/the-best-security-and-privacy-features-in-ios-12-and-macos-mojave/ #Apple #privacy
(FR) Voici le résultat de l'étude sur les salaires bruts pratiqués dans la SSI.
Merci à Alice (qui se reconnaîtra) pour l'infographie et à tous les participants! 😉
Données: https://docs.google.com/spreadsheets/d/1_-4gt59M6ww_lQBa5fV1tfvMVXlscvs4Ie1b5tRGNpo/edit?usp=sharing #biguppouralice #salaires #benchmark https://t.co/QSDLVOldjx
This is why Amazon is becoming cancer https://www.recode.net/2018/9/10/17797720/amazon-is-stuffing-its-search-results-pages-with-ads #ads #amazon 🤮
Security Researcher & Cyber Observer (pgp: 0xdd1190a656721c4a) ㊙
Follow friends and discover new ones. Publish anything you want: links, pictures, text, video. This server is run by the main developers of the Mastodon project. Everyone is welcome as long as you follow our code of conduct!